AICPA Invites Comments on SysTrust and WebTrust

On July 1, 2002, the American Institute of CPAs (AICPA) and the Canadian Institute of Chartered Accountants (CICA) issued an exposure draft (ED) outlining proposed changes in the structure, order and wording of the principles and criteria for SysTrust and WebTrust services. The ED explains that, "There has been no substantive change in the scope of work necessary to perform WebTrust or SysTrust engagements."

Reasons for undertaking the project, according to the AICPA and CICA, include the facts that: (1) many people, including clients and potential clients, are confused about the differences between the two services, and (2) there isn't any conceptual difference between the criteria and principles for the two services. Backgrounders on the services taken from AICPA's Web site:

  • WebTrust was the first service to be introduced. If a business meets the WebTrust principles and criteria, its site can display the WebTrust seal of approval. By clicking on the seal, customers can review the site's disclosures about its business practices, management's assertions, and the accountant's report. (See, for example, the seal by J.H. Cohn on AICPA's home page.) These services currently include the WebTrust programs on on-line privacy, business-to-consumer sites, and certification authorities. Services will soon be added for business-to-business sites.

  • SysTrust is a broader concept that has in the past used a logo instead of a seal. The logo was meant to be used as a symbol for marketing purposes. Basically, the SysTrust service consists of evaluating a system against the SysTrust principles and criteria and determining whether controls over the system exist. Engagements can involve selected principles or other agreed-upon procedures. The accountant can also provide consulting services, e.g., to evaluate a client's readiness for a SysTrust engagement, apparently without risking accusations of a conflict of interest.

Key changes introduced in the ED include use of the SysTrust logo as an equivalent of a WebTrust seal when the accountant's report is presented electronically, provided the issuance of the logo follows the same procedures required to issue a WebTrust seal. The reasons for allowing dual symbols to achieve the same result are not intuitively clear, at least not to the casual reader, but the ED explains that seal management procedures will be provided in the Trust Services publication to be released after the exposure period.

Download the ED. The proposed changes are scheduled to become effective for examination periods beginning after August 31, 2002 for services other than WebTrust for certification authorities. Comments are due by August 15, 2002 and may include suggestions for changes not addressed in the ED. Comments can be sent by email to or

-Rosemary Schlank

You may like these other stories...

More and more businesses are adopting the cloud in order to take advantage of benefits such as greater efficiency, increased productivity and lower costs. Companies in general are flocking to the cloud for email hosting,...
A great way to increase business for your accounting firm is to remain at the front of your clients' minds all throughout the year. One of the best ways to do that is through an email newsletter. Perhaps you send out a...
Cybersecurity is no longer the domain of an organization's IT staff. It's moved to the boardroom, and in a big way. Accountants and financial managers may have been thinking it's just the province of the tech...

Already a member? log in here.

Upcoming CPE Webinars

Oct 9In this jam-packed presentation Excel expert David Ringstrom, CPA will give you a crash-course in creating spreadsheet-based dashboards.
Oct 15This webinar presents the requirements of AU-C 600, Audits of Group Financial Statements (Including the Work of Component Auditors).
Oct 21Kristen Rampe will share how to speak and write more effectively by understanding your own and your audience’s communication style.
Oct 23Amber Setter will show the value of leadership assessments as tools for individual and organizational leadership development initiatives.